Security & Testing Claudeスキル

Bug Fix Plan Critic

Evaluates and scores proposed bug fix plans to ensure technical correctness, completeness, and risk mitigation.

MoAI TRUST Enterprise Quality Framework

Enforces the TRUST 4 principles—Test First, Readable, Unified, and Secured—to ensure production-grade software quality and enterprise governance.

Professional Code Reviewer

Performs in-depth code quality analysis and provides actionable, structured feedback to improve maintainability, security, and performance.

Security Compliance & Scanning

Automates security audits, vulnerability scanning, and compliance validation for software development workflows.

TDD Workflow Pro

Enforces the Red-Green-Refactor cycle to ensure test-first development and high code quality.

Security & Compliance Validator

Protects applications by automating security audits, vulnerability scanning, and environment compliance checks.

Scale Game Problem Solver

Identifies architectural bottlenecks and hidden edge cases by stress-testing software logic at extreme scales.

Code Testing & TDD Suite

Generate and run unit and integration tests using pytest and Jest with support for mocks, fixtures, and coverage reporting.

TDD Wada Style

Implements high-quality software using the Red-Green-Refactor cycle and behavior-driven test patterns inspired by Takuto Wada's philosophy.

Security Compliance & Vulnerability Scanner

Automates security validation, vulnerability scanning, and compliance auditing to ensure secure software development cycles.

Test-Driven Development (TDD)

Enforces a strict Red-Green-Refactor workflow to ensure production code is always verified by failing tests first.

Automated Testing & QA

Generates and runs comprehensive test suites with automated coverage reporting and documentation-backed best practices.

Security Remediation Library

Provides a centralized index of security remediation guides to help developers fix injection, cryptography, authentication, and configuration vulnerabilities.

Scale Game Architect

Validates software architecture by simulating behavior at extreme scales to uncover hidden bottlenecks and production edge cases.

Backend Test-Driven Development

Guides the development of NestJS backends using a strict, iterative Test-Driven Development (TDD) methodology.

Anthropic Web Testing

Facilitates end-to-end testing and interaction with local web applications using Playwright scripts and automated server management.

Playwright Browser Automation

Automates end-to-end browser testing and web interactions using the modern Playwright framework for reliable web application validation.

Playwright Testing Framework

Automates end-to-end browser testing and web automation across Chromium, Firefox, and WebKit with native WSL2 support.

Authentication & Authorization Patterns

Implements secure access control systems using JWT, OAuth2, RBAC, and session management patterns.

Debugging Strategies

Master systematic debugging techniques and root cause analysis to efficiently track down bugs across any technology stack.

Authentication Management

Secures and manages authentication flows between Laravel Sanctum backends and Next.js frontends while preventing environment configuration leaks.

Debugging Strategies

Master systematic troubleshooting techniques and root cause analysis to efficiently resolve complex bugs and performance bottlenecks across any technology stack.

Authentication & Authorization Patterns

Implements robust security systems using modern patterns like JWT, OAuth2, session management, and role-based access control.

Security & Compliance Checklist

Applies comprehensive security audits and OWASP-aligned checks to identify vulnerabilities in application code and architecture.

Condition-Based Waiting

Eliminates flaky tests by replacing arbitrary timeouts with condition polling to wait for actual state changes.

Authentication & Authorization Patterns

Implements secure, industry-standard access control systems including JWT, OAuth2, and role-based permissions.

Remediation: Injection Vulnerabilities

Provides actionable code patterns and best practices to fix SQL injection, command injection, and cross-site scripting (XSS) across multiple programming languages.

Python Dependency Updater

Maintains Python project health by auditing security vulnerabilities and managing version compatibility in pyproject.toml.

Verified Completion Gate

Enforces rigorous verification protocols by requiring fresh command evidence before any task is marked as complete or fixed.

Story-Driven TDD

Guides developers through the Test-Driven Development (TDD) inner loop to implement software features incrementally based on acceptance criteria.